The vulnerabilities stem from fundamental issues in the Bluetooth connectivity code shared across all Coros watches and their bike computer, creating a security nightmare that impacts the company's entire product lineup.
Hijack user accounts and access all stored fitness data on COROS.com
Manipulate device settings remotely without user knowledge
Crash devices during critical moments
If you're interested in diving into the specific coding and architectural issues at play here, I highly recommend taking a look at the original blog post outlining the problem. Perhaps most concerning is the ability for attackers to inject false information, such as fake text notifications, while simultaneously monitoring all genuine messages and notifications sent to the watch.
What Coros users need to do
The company has now accelerated its timeline, promising partial fixes by the end of July and complete resolution by August.
But that issue aside, what do you need to do if you own an affected device?
The bottom line
Even if you aren't a Coros user, it's important to remember that all fitness wearables, despite their seemingly benign nature, can become significant security liabilities. These devices often have access to highly personal information—from health data and location tracking to text messages and notifications—making them attractive targets for hackers. As our wearables become increasingly sophisticated and connected, it's more important than ever to stay on top of best security practices.
And if you are a Coros user, make sure you install any and all July and August updates as soon as they are released.
Read More Details
Finally We wish PressBee provided you with enough information of ( There’s a Major Security Issue With Coros Fitness Trackers )
Also on site :